Sibros Compliance - WP.29

UNECE WP.29 for R155 & R156

Cybersecurity in Depth and by Design

Schedule DemoDownload Whitepaper

WP.29 & Sibros

Sibros’ innovative and paradigm-shifting Deep Connected Platform addresses vulnerabilities associated with software update management systems and mitigates cyberattacks with a vertically-integrated and compromise-resistant data management and OTA update solution.

WP.29 Sibros

Cybersecurity Management Systems (CSMS)

Checkmark icon
Manage cybersecurity risks in both software update systems and vehicle design. 
Checkmark icon
Vehicle lifetime protection from R&D to post-production and decommissioning. 
Checkmark icon
Multi-level access and signature points to safeguard against manipulation and hacking. 

Software Update Management Systems (SUMS)

Checkmark icon
Full lifecycle documentation, update history, and secure data storage. 
Checkmark icon
Full-vehicle ECU and software version checks and image verification
Checkmark icon
Hazard Analysis and Risk Assessment (HARA) for safe and secure software update installation and integration.

Security at Every Stage

Paperwork icon

Information Security Best Practices

Full process documentation and security controlled data storage, employee documentation and security procedure training for quality assurance.

Security Icon

Safety Assurance Mechanisms

Vehicle “safe state” and health verification prior to update installation and rollback mechanism to preserve functionality in the event of an update failure.

Search icon

Target Identification Processes

Vehicle groupings based on static and dynamic characteristics, enabling targeted updates and software fixes.

Light bulb icon

Management Protocols

Comprehensive and adaptable cybersecurity management system for the full vehicle lifecycle to preemptively identify, categorize, and address cyber threats and attacks.

Paper search icon

Vehicle Type Approval

Deep data access and analysis enables exhaustive risk assessment of critical in-vehicle hardware and software.

Paperwork icon

Version Checks

Unique identifiers for hardware and software update packages to ensure update validity and integrity.

Bootloaders Icons

Compliant OTA Processes

Update creation, transfer, and receiving processes for full compliance with WP.29 SUMS requirements.  

Bootloaders updates


Automotive specific open-source CSMS framework and multi-layered cryptographic algorithms to safeguard OTA updates.

Is Your Fleet Protected Against Cyberattacks? 

Contact us to schedule a demo and learn more.

Schedule Demo
OTA data logger

Concept Phase

The item must be defined along with its relation to cybersecurity goals and concepts. 

Item Definition
Cybersecurity Goals
Cybersecurity Concept

Product Development

Cybersecurity-related components and their respective cybersecurity specifications must be specified, defined, and evidence provided regarding specification effectiveness.

Integration and Verification

Cybersecurity Validation 

Cybersecurity goals and claims must be confirmed and validated along with the elimination of any unreasonable risks. 

Cybersecurity Validation 

Post-Development Phases

Cybersecurity requirements must be applied and the introduction of new vulnerabilities prevented.


Operations and Maintenance

Cybersecurity must be maintained after production, including the implementation of remedial activities for any and all incidents. 

Cybersecurity Incident Response


Develop updates and relevant capabilities within the vehicle in accordance with ISO 21434 and WP.29 R156.

End of Cybersecurity Support and Decommissioning

Methods and procedures for communicating the end of cybersecurity support and the decommissioning of relevant items and components.

Create a procedure for customer communication of the end of cybersecurity support for an item or component.